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INTRODUCTION TO ETHICAL HACKER 



"Aija-a ^ - jJadl jl dyjj tJjau V ^ I j| .Utffi Aai> ALIjLw a jjaj j,uaj 

J JJ (JJJUJ Jj/» ^11 (_£j£jal*Jl L_fl Jjalllillj (gjibx]] L_)jJ^Jl (j3 < ■ & j£ 

liA J ,<jjuj 20 cJ^J 16 <J^ ^ ^J^J-" ^A jLaC-l J^-g-^ J » ' ^11 ^ U '(jjjl J-all Clufci JIaJI Ljj^C J 

^La.jjjuil <J (JjjUII JcLaiJ (jx» ^j .(JjAj^.1 ^jjSjJa all ;l_jjj^JI ^ Laj < . ulali ^ La t jj^tgJl ^aJlc <J UJ)*J)'^ A UJ^^ 

dljj£ ttjJC (jjlkj (jl JJjJ (j^aj^lLa <Jj^VI J jA j L_llL ni <j| Lcla (JjjUII 4-9jJ^J ^j£J (j* ^-Lq j jjJ^VI ^aAJJJJj ^jULj 

JjJ^jU Allxjij J^-fc^ ^r-l>^ai .1 flntbU <JJJ^ ^JJJ*^ J*^\ J^ *J^' dllaljlkVI lik^Vj -c^O*^ f^"*^ J dASIjlkVI cIjULc; 

Lg L_Jc.| (j* 4j!>lj3l £>iA tLd (J<^ nl JJC Vj 6J^J j C-^^JOl jl c> H o-aU^vi ojiiioj^u ^f^aij ^laij^u jj 

jll 3 <UajVI j <j^aUJI 4£jJill jjo£ Jc Jasu jSl^Jt jl LuljtjJC,! J ^jJaJ jl l^a. j*fl c*UiI . jSl^JL j jajujJ Lq (jjJ Cla>l^ 3 

Liajl j dll jsull J^IsUjojI j A dlV^U jj^lgJl (j-La^lfr^ll (jljikl A^i ^£-all (j* lilli] 4L^IjaVI j L-jUjoaVI (j-<a JjAslSI (J^t l^JjlaJ 

A J^g-I! I^A L_flJ^Jl AijSLXi 

a_uA\ aJu^ ^USll (network security prof.) dill^JI ^ ^Vl ^jl^j (ADMIN) <^Vl c> ^ m^'j^ c> 
^ IgJ^Ulajl) t ^uhi l ^IjAlajl ^ aJI ^^j^ c^ill U j ( jjSl^Jt) jAsJI 5i jslaj t*Ui j cjI ^ (infrastructure) ^i^V iii^jll 

,L_Jj^Jl jfl t . \\ 1< j^ aIjLoJI jixJl (j>i ^ jslxJI jA liA j (SjLjallj jjIS J;!*]^ a lajuLjVI 




4jI jJ j ojfkj <J£Laui j jj jjj^ll £a (J-dlxjll ^^^ic (jjjjlflll 6J^X*ll ^jj^jjaII Jl JJjujj3 CjUiiLaJl J CjjlSa) J j) 4^*1^31 Cl^lla ^ 

.l-JUlSI jLj cJ^^ ^-?^^>^^ cJ^^^ ^ j^- oja^. I p^I 1 
<iL <^jj1I o^j ^ J ^J^ 1 ^ GUI J Graphical User Interface -h cJjxj U jl JjjjjjII ^ 
Cjl£jJall (jjxJI (jjxijixJIj CjUlIII ^Hjj jjajUJI Ijc. Ijj>JI 11a ^j .^UuaVIj Sjj^ (j^jll tilli J jljjJ jj^^j j^lj ^'"J^ 

Jc L_fl jll ^-iaJ jjL^JJ V ^AJJC- j (jjj^.bll ^jU»J^. ^^xajlxaj 4_^xijj3lj (JjaIxJI ^^^^xJj jj^l^JU ^jjajsu til JJJ^Ij djLauajjxJlj 

^cxil jj3I Jc 6 jjc (jjlnun (Jjill ^ ^-ialk t . la>j V j AjjIajI lIjV j3^ a1 c jll IjA tilljJ .^^5 ^aJlxJl ^ jlaui 

Ajjjjuj La! Ijiajj < pli jjuol l jj^l^Jl Aj3 l1jIjI^_a] a^^ ^Lq! ( UjujJ Ia jj-dj ^jjjjuo£jj 

J «; jSU^ ujjf 1 ^ c>j^^ c> ^-^^ ^ Jj^W^ (Crackers Jj^tj^t) j*j U^k JjIjjj aj&Ij Jj^W^ j* 

^aljill j)C ^Lxiljjjjl (JjxJ ^31 ^J jJ«-!l J Lffi-^-^ (j- 0 ^— 3 jll ^li J jLkll j £txil jJl ^JJ^I ^a-lAJ^ajj ^jli ^ill ^cxijJxJl jA j£l^Jli <^ijj3l 
^^jaiJJj (JJJJJJJ U*A j jJl ^LdJ^JjauJl ^iljjJl J^.1 Jcl j3 ^LojjIj ^J ^ > ^ LaL^J (jUijajl ^>(g J^a ^Sfl f^*^ J S- 5 jllaxJl ^JJ^ 

L_j£3 (j^aj (J^^VI (j-<a3 (illiJ _ J j^. jll jj^. Jl jj^joJI (JJJ^JJ Jjll £c-alijJ ^lj^.1 J CjljJJJjudll J^-ljl J La^J ^jliill (Jjjoi^ jj* (JJ^j 

(jxi Si jkU» 4 j ^j!o jj£l j^3I L_m3 (jiUal UjIc (Jj l_jjj^j3I jl (Jiiajll L^gjj 4 aJajVI Jl d jjc (jjlkjj jjill j| jflVI Jc- jSl^Sl 

-W^ ujj^ c*^ c^j pj^^ l jl J*^j ^j^V^? Crack J*iii 




^ETHICAL HACKING > U 



(_^ill (j^akjaJl , jj^l^Jl oA^JjujJ (jl (j£-<uJl (jxi jll j L_kstjJa3l Jalaj j CjIjsljI! jl^jj (j-<* tdj A > ^n^ll a£jjoJI jljlkl j (j^>^^ AjIaC. jA 

jjjj l^j cjI jxjII l^U^j£I jj^aij Jjsu^jII 4^Jij| Jc; ^ j^JI J*^ Jaxj c^ill (white hacker ) o- 3 ^^ j^W^ ^-^^ ^i^j ^jiL 

<jia3U diljl^a (jLudjl jA j^.1 Jx-aJ jl .dlj (j^aL^Jl ^Uajll (_^jJ (j>»VI CjVAx-d SjUj Jl c5^J^ C5*^f^^ (j -0 . CJ?^ (J^-^^ 

(jjoijj <j3jst-<a (jjoij a ikjjujj Cilia jj£lA <juoij JJJXJ (j^akjoJl 11a j lA alia <ill JjxjoijII 4 <iiaJl J L_kstjJa3l JsIaj (jc d la jllj ^ill <jjl^l 

_ jjjJa (_^l ^-JAaJ (jl (jj^ O^J 




y^iijJkii jjsi^ij J%&\ jjSifJi ^ 



J j j£lA (JjJaSl 6 jfk cJ^^- (j* ^ t ♦ 1 1 >1 *^J 



I^JjUj U jl $jlgJJI 6 iA ^jj^ ja : (ethical hacker) Jj^^l • 

,m3a A\ CA^A\ 'A^! J^VI ^ jll (jjjud^J ( J 1 ^ dAaJLujJj ^IIslII 
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(INFORMATION SECURITY OVERVIEW) ^Ujk^l <>! & ^jj 1.2 



b aj Jj^ijll/^jljll Unauthorized access .1 

.cjUjIx^I ^ jo ( Disclosure .2 

.cjU jkJI d^a ^ JjaxjII Alteration .3 

cjUjIx^I o'±& jiaSI Destruction .4 



IC3 



^ Cf- jtJ& ^ ^jj^V^ cU* 2 ^J^ 1 yr*j Internet Crime complaint center JJ jL-aS^I 

www.ic3.gov W cPjj^V^ 
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DATA BREACH INVESTIGATIONS REPORT (VERIZON BUSINESS) 
www.verizonbusiness.com 



Typo* of hacking lyy 



and prrrwit of rrcord* 





;4 fill i-.l-»,tU.^«t} Qdju 



HACK VALUE 
EXPLOIT 

£2 j!Lg JJC. til jLuj t . UjujJ (jl <j£-<uJl (j-a ^^jll j (COmm&nds) J-^ J> J> l5^>^ CjULulaJ (jC 6jUc Uiajl (jj^J (J? <j£-aJj CjI^JjuJI j 

VULNERABILITY 

ptlaaj j) (design COde) fQ*>^l ^ t lataj La] i>i& t g»>^l jataj (jj^J Jfl j tdjl^aull/t flxjJaJl lataj (jc jasu ^lSaj^o 

c _^£3 j^tgJi ^ ls*^ j^j^axJi jiisu j& j .(>»Vi ^Uaj ^ <ja c_j jc. jjc. ji jid jjc. till jjoj l_ujujj ^ j (error/bugs) 

TARGET OF EVALUATION 

^cLoij ^ jiii 11a j b( j^vi o-a ^-j^ J jii ^^i>»n ^ jl ^Ljj jl (IT system) ciji^^Ji ji cjU ji^xJi ^Uaj j& 



ZERO-DAY ATTACK 
DAISY CHAINING 

_<j 4^uji ajj^si tsBi j (destroy log file) 
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>c >l ^ikj ^ ^j^a l$\ 6J U^ : Attack • 

.i— u*Jl j AijjuJI (j-G djULiJI AjLic ; Security • 

a iAVqjI] ^j^jII < (j-ftVb (jl C-J^JI j) Jjtill ;Threat • 

(ELEMENT OF INFORMATION SECURITY) cjUjk*II <>l 



(J^.l^)>» (Jjaa^ ^jj^jjj l^ja^jjoj c_ixj^a3l £y± (Infrastructure) ^ &laj^U CjL<» jLlxJI J*-^ AjIao (Jj^j <^5^ aJL^JI ^a 



Assurance that the 
information is accessible 
only to those authorized 

to have access 

! 


Assurance that the systems responsible Guarantee that the sender of a message 
for delivering, storing, and processing cannot later deny having, sent the 
information are accessible when message and that the recipient cannot 
required by the authorized users deny hawing received the message 

J ! 

» j 




Co nf i de ntia 1 i ^^^r^ 


1 rites r '^^^r^ 


Availabtl^^^ 


i JMom- 
> Authenticity 1 „ 

^ Repudiation ^ 




1 


; 
: 

i 

V^Tlj The trubtworthirtess of data; 
fl L <ar resources in terms of 

unauthorized changes 


Au t heriticity ref'eri to the ^SB E 

characteristic of a communication, | 

Hnrnm^nt n r suny rlata that <p- t r^- 1 - 

the quality of being genuine 


I 



(4-i*a^aaJ)) Confidentiality • 
Integrity • 
(^.UV!) Availability • 

Authenticity • 

.J-^VI jjc. (genuine) *^ ^ a jV Q ^ ^ u * 1 ^ c5^j j» i^jVIj^jVI) *Lajai jji^j 

i^VI lU^ authentication iS^U-a*!! <> jll J j^Vl j 

cjUUII AjalA^ t> ^Shlt digital certificate ^l^Jlj smart cards j biometric c> cJ^ ^^i^i .3 

Non-repudiation • 
.Kerberosj HTTPS Jj^j^ ^ c> c> 




Moving the ball towards 

security means less 

f "mn ctlo n a t ity and usa t>t'l it v 



<Re: strictions) 




Functional ity 

(Features) 
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(Usability - Functionality) g^Vt JL <^ (security) gl»Vt sjjj <^ <^ 



INFORMATION SECURITY THREATS AND ATTACK VECTOR 1.3 



jib jjl Attack Vector . 1 
.<Lu^J! WVI cjI^II Security Threat .2 
.^j^JI liA <> cJ^jl Goal of attack .3 

? f j^ll <^L <> ATTACK VECTOR 



c ^j3I 4^ila3l CjIjLouJ! .<j (j^aLiJI ^ j^g-II cJ-<^ ^—j^ jlx-^Ji ^liaj ^ j^. jA\ o^lilojVl ^ ^.1^31 ! Attack Vector 



f Ijj <> Li^il GOAL OF ATTACK 

jj^a Uc cj^Ij ^ uj^ attack ^ t>> 




Attacks = Motive (Goal) -+■ Method -f- Vulnerability 



y 



(Vulnerability + (method + (Motive <> <-i^l) 

aI^aVI ^ Jlla (motive , goal or objective) £^ uj^ H f j*^ ^ o$ motive JjVl 

cjli Aij^ J ^u^> <> ^ISSjI iiiii tCjUjkJI aIj^ i (disrupting business continuity) 

1jU» jIslaII ^Uaj ^ (exploit vulnerability) t 1 u ^ JalSj j!>UujajV l_u3LojVIj (_3jia31 ^jaxJI - ikiLmj t a^j] ^.l^JI til^lidl 

cslj security policy ^ J information system 
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Ma3*a1\ J^Sn CASSIS SECURITY THREAT 



Natural 
Threats 



e Natural disasters 

Li Floods 

« Earthquakes 

Q Hurricanes 




0 0 
Physical 

Security Threats 



e Loss or damage of 
system resources 

t? Physical intrusion 

Sabotage, espionage 
and errors 



0 



r 



Human 

Threats 



O Hackers 
Insiders 

Social engineering 



■1 



& Lack of knowledge 
and awareness 



AjajJalt cjU^HINatural Threats • 

4ii jl£ ^1 jl hurricanes j^lc-Vt jl floods > ^41 1 jl earthquake J jV jll ^ lU^ CjI^iu^I 

_ jj^^ilj j| ^jl^ill CjIjUJI ^L^.j1ujIj jial^ UU^ Jlxa CjU» jIslxJI £>i& Jflfl ^a^C aJ ^^jll laia^JI (J^H 

Ajibjjil! cjtjj^t Physical Threats • 

.(hardware damage) &j**Vl ^ J) d cfi*^ t> ^SLUI j^l^ L^jij (physical impact) 

cjU^I Human Threat • 

.(Outsider) jr jLaJI c> j' (Insider) 3 ^ul l Ja>b <> *Ijjo> CjU^JI ^ib CjU^^II ^> g^ll IIa 
(j ^ui c> ^ j^^t J^b ^ jjiiSi ^<JI <iajaj| jj ^jj ^1 j jla^VI jfisu cjLaa^J)) Insider Attack • 

.CjU jIslJI <xJajU (j-aUJ! (security posture) cr*^ f^ 3 j^-^l jf^ j .-^^ 
^1 a jjaJl q^xj uA^ 2 t> olp-' o- 3 ^^ :({r jlill ^> cjIaa^JI) Outsider Attack • 



Network Threats 



>ats 



Application Thr 



I 



Information gathering 
Sniffing and eav«esdropping 
Spoofing 

Session hijacking and Man- 
in- the- Middle attack 

SOL injection 

ARP Poisoning 

Password based attacks 

Denial of service attack 

Compromised- key attack 



Matware attacks 



Target Footprint) ng 
Password attacks 
Denial of service attacks 
Arbitrary code execution 
UnautHorized access 
Privilege escalation 
Back door Attacks 
Physical security threats 



Data/Input validation 
Authentication and 
Authorization attacks 
Configuration management 
Information disclosure 
Session management issues 
Buffer overflow issues 
Cryptography attacks 
Parameter manipulation 
Improper error handling 
and exception management 
Auditing and ta g gin g issues 
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iNetwork Threats .A w 

JL^aiil CjI jja ^ (j^»jN > j ^ j^Vl (j* <c j^-* l_j <jj Jajj <jc SjUc i Network ^jnilt 
f j .(^j^j ... ^al^ tCjUjUJI) Jla computer resources ^jlj^lj £AjLJI JjUI cilbj communication channel 
cjIjjSII ^ La LH aaJi Jj*j £fi*A\ <lk communication channel JL^iVI cjIjjS J5U> ^> ^LLJI £>i* jjj* 

.CjLg ^ist-o Lg <3 jjujj 

(cjUjkJI Information gathering . 1 
(^^u^lj ru^nl l) sniffing and eavesdropping .2 

(< "i > ^ t) spoofing .3 
session hijacking and man-in-middle attack .4 

sql injection .5 
ARP Poisoning .6 
Denial of service attack .7 
comprised key attack .8 

:Host Threats .B 

Malware attacks . 1 

Target Footprinting .2 

Password attacks .3 

Denial of service attacks .4 

Arbitrary code execution .5 

. Jj^L a! ^j^a uj^ uj t> ' Jj^l Unauthorized access .6 

Privilege escalation .7 

B ack door attacks . 8 

Physical security threats .9 

Application Threats. C ^3f^ 

jl CjL* jIslxJI AiijjuJ 4jL^A , \jQ Vi CjI^suII £>i& £yz '\ffi tl1 J ^1 g a\\ q\ L_ Li^ .l£^>^ Cjtfl.ulaJ ^£ l£^>^ L - J ^^>*^ ^I^xjII £>A& (jc 

Data/Input validation . 1 

Authentication and Authorization attacks .2 

Configuration management .3 

Information disclosure .4 

Session management issues .5 

Cryptography attacks .6 

Parameter manipulation .7 

Improper error handling and exception management .8 

Auditing and logging issues .9 



(cjUjiL4it ljj*) INFORMATION WARFARE 

L p ax j ^jc Jj^Ji ^ ict cjVL^jVIj cjUjIx^I L^j3j£j jjAj (Information Warfare/InfoWar) ^Ik^JI 

dj^L^. dli^aj lilj .cJLacVl ^Ua3 ^ ^jjjuoflLLo CjLa^A jl t^.uAj.ui Asu dlli CjLa^A l_JLl!I UJ^ tibial j-q (jlajlsuj j 1^-aJL^o 
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jjjl&ll A_iJlc. ^ la^l^i ^ikluaJj 4 c ^-aj^1£I Aid ^-^liaj^al AjLI^ ^ £-^Ui<^j\ li&j . £§1 j-<Jl i>i& ^ 

.(jlaljC-Vl <JiLa (j-a ^UaJJ V £.31 J-<Jl 

iDefensive InfoWar 

.(ICT assets) ^W^i Cy* £ j^' ^ ^vimi ^1 CjIj^LJI j cjIj^ nljimVl jjAj 

: Offensive InfoWar 

_4^iUJI j^JI ^ (ICT assets) cjLou^>JI ^Jc ^ ^LjU ^Jill InfoWar 



Defensive Warfare 



Prevention 
Dete rrcnte 
Alerts 
Detection 

Emergency 
Preparedness 

Response 




e 

i 

N 

I 

S 
E 

c 
u 

R 

1 1 1 
T 

.a 






• 

IM 
F 


internet 












(IPV6 fl^-l 6- ^-Vl au^l) IPV6 SECURITY THREATS 

j-gj CjLg jIslaII ajj^ jj^kJI j (jLaVI (j-<i c^-^-l c5 ^ j 4-^° cJ^^^ ^jiat dal Iloi^j cilLdj <jla IPv4 Ajj^ IPv6 

Auto-Configuration threat-1 

^jj <J lil CjI ^iilll oasu jic f j^ll " >> i^ l ^ jii j ,(IP) a£jj^JI (JjjUxJ (Authconfig) c^VI ^I^VI ^c-^j IPv6 

^ £y&\j ^i^j^al\ ^I^VI 

Unavailability Reputation-based Protection-2 

L y^u aA^z ^ (4i J o jj^ip cjjjU^) reputation of IP address ^l^i^l aJUJI a^VI J jl^JI 

.IPv6 u^j^ lU^ U jjj^ ^ c&j cr^^J .malware ^ j^L^ll 

Incompatibility of Logging Systems-3 

32 bit ^ u^j^ IPv4 u^j ,f^jj ^ 39 ^ ^ W^j^ ^ c^^j 128 bit ojj^ IPv6 

Jaxj ^jl l^jj ( j£aa3I IPv4 A>JijVI gi logging solutions J j^ » ^ CjULc^ jli cillil 15 ^i** uj^j 

.IPV6 ^Ufl CjKl.nlt 

Rate Limiting Problem-4 

(Automated attack tool) ^5 ^W^^ ^'j^^ ^^?V (rate limiting strategy) ^ ^W^^ j^^Admin <^jV( l^j^^ 

.128 bit cijli ^jjjUc A-x>l,^luil Aic Uxj^a (jj^j ^— s jjuj 11a 



IPV6 fS^ii^A <^ c>^ cjUi^l 

Default IPv6 Activation-1 
.IPv4 jVl aJ^Is ^ ^^jj ^1 j , (ADMIN) fUajl! c5jd^ ^ uj^ ^ lA^ 1 c> IPv6 

Complexity of Network Management Tasks-2 

cVJI j> ^Ij U>j (::io, ::20, ::FOOD, ::C5C0) i^l <V IPv6 u^j^ ^jj^s ^ (admin) ^1 
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Complexity in Vulnerability Assessment-3 
m *StoLA aA*c £j\yu\\ j ^jJLouJI J^l ^ (infrastructure) o»ai J*^j 128 bit IPv6 

Overloading of Perimeter Security Controls-4 

ls* h~> \ "^ 6 ^ uj^ ^ (extension header) add-on 40 byte ^ header ^ ^4$ u' <-U^3 IPv6 
.IDS j firewall , security gateways ,routers l&* a£j^13 (security control) o*VI ^Sa^ll *\ j*\ 4_kJ jj cjUUxJI 

IPv4 to IPv6 Translation Issues-5 

.(poor implementation) t> ^ j' ^ 0^31 <> IPv6 c^! IPv4 c> 

Security Information and Event Management (SIEM) Problems-6 
.event ^— jI^VIj log ^-dii* ^ .iiiujlt ^^jj ^1 j (jl jjc j IPv6 (j- 0 o^j^- J-<^ IPv6 ^^"j lS^c- lS^ 

Denial-of-service (DOS)-7 
Trespassing-8 
.(restricted resources) ^£^1 ^Jj* Jj^»j^ 



(g£l*Jt HACK CONCEPT 1.4 



^(Ethical hacking) ^bliSfl jSl^tj (Hacking)>«^l JjiJI U 



hacking j&f^ 

J j » ^ti (compromising security controls) -k>lj^L JiLkVlj ( vulnerability )<^jV 1 Cj\Ju 

J (modifying system) Jja*j Ja^j 11a .^U^l ^jIjJ (unauthorized access) <i c>^" J^' J^- 

cj^Jl JjL^ (application feature) cj! 

Ethical hacking ^bUSfl jfijSlS ^jj 

,<>Vl cjI j«2I Ul^3 ^aJI jj^HI 

back door .3 



According to t he Symantsc 2012 State of mfcirmat ion survey 
information costs businesses worldwide S 1 J. ti lllion annually 



Thef 



of custo m e rs " personal information m ay risk the 
ess's reputation a-nd i nvite lawsuits 



m 



Hacking .:an be used to steal, pilfer, and redistribute 
inte Hec tual property leaci n g T r: business lass 




Repu 



Business Loss 



Botnets can be- used to launch various types of Do-5. and 
other we ta- t>**5«--cl attacks, which mav 3ead to business 
down-time and significant lo« ca* rewenuev 



Loss of l=te?venLies. 



Attackers may ate a I corporate secrets and sell tnem j 
to competitors, compromise critk:al financial 
inform ation, 



and leak- information to rivals 
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. jj jjUx^ll Sj^-^lj ^cxaljJ (j^aJa^j ^Ludjj oj^ixJl 

,1a jjc.j ^jjj^IVI ^^>^ l^j^I jl(ATEM) (jLojjVI <«— ijl^ diL* jl*.* jl 4jjU»jjjajVI CjU* jlx-a <3jjoj Jl* jjIS jjc. ^^^juj 

(f l4>u» ^uilt j3 JjSi^M) Black Hats 

^ji U£ (6 J s jLia <iaj^j| * j^ill t (computer science)^* ^ J ^ J-g-* ^ j*' 

.(crackers) Jj£tj£ u*j^ 

(f U^ult 4juSJI jj JjSIaII) White Hats 
Ja.l jjiiftl jJla^ ^Si^ jli ^uVl ^ .(security analysts) l^^I oi l ^Ij 

(AjjUjI! AjuaI! jj jjiL^t) Gray Hats 

^ j cjI^J! j iJajVl ^ cj! ^UjI ^ *^La^ Liaji ^a^j .White Hatsj Black Hats 

.liSAj UUl l^J*^ (j^jia (software and hardware) ^^->Ji s^Iuiaj u^j^ ^j^^ 

(^jjaalAJI jSl^il) Suicide Hackers 




Script Kiddies 



i 



Spy Hackers 

<jaiaLixJl CjUJal<Jl ^j-d jljjujl Jc (J ga^Jlj ^jljlkV a alia A\ CjUJaLJl JjS ^j-d ^aA j^lj ^aJJ ^1 jfll (jC 6jUc ^aA 



(^jj^V! ^Ui! v Ujl) Cyber Terrorists ^ 

^aJaill L_fl^lj| ^jl^)^. ^>fi*J j ^AjSjC jl AjJ^S j| AJjojUjoj jl A-ljjJ (jla! JC-V CliLllasLxJl j JJ Jjja^l ^a-laj C V^luil diL^aA ^^A 
jj jJJ^ll Ajjj ^j^3 4_ijIa jVI (Jl*iVI J£^a djlil CjLujjUui ^^A j m A AiajVI J-^J J-^ (Jjjaju ^aj| ja. jl CjLilaa aSIj ^^^^ 



State Sponsored Hackers 

AjjjoJI £y± AJlc Aj>J^ LS^ 0 L — ^ J^*-* LS^ 0 J J 1 ^ J C3^^)^^^ J^ 1 ^ L — J ^" xi ^ 4 I*. .<! ^aA jj^Ij ^aJJ ^Ij^l (jC 6jUc ^aA 

,^5j^.VI CliUi jft^N C5^>^^^ diUi jIslaII <>Jaj| (J^asu J^^J J 



ft 
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sirmpljearn 



THE CHOICE 
IS YOURS 




:HACKTIVISM 

(c-jUujV <i^a jSIt 6 j£a J] jjAj 11a) j^i ^^Ix-aj ji .hacktivist c^-^ 

Jj^j^ u' 6 £*L^ o^j .o 3 ^^ i> (bad or wrong) W^' U^j ls^ 



(Ai-ajAJI J*Ija) HACK PHASE 1.5 



(^!ilkl«VI) cjUj^aJI Reconnaissance-1 

u^ai Scanning-2 
cJ\ Jj^ll Gaining Access-3 
JjiiH ^ iaflUu Maintaining Access-4 
<U SjUil cilaL Clearing Tracks-5 

Reconnaissance • 

t_fl^JI jo CjUjkJ! j^a ^l^xJI ^ jL l^jfl ajj j^M I <k ^>JI preparatory phase ti^ 

.^Uajll ^ Jji.^ oj^? c^^^ J c> network scanning 

m A a\\ CjLq jlx^ll 

ojUc J ji*J! (jljikl ^^>s ^ j' ajc-L^VI .(social engineering) ^^IaI^V) ^ < n ^ 1) cJ-^ ^-^^J^ jA * j^. 

jl L_fljl^Jl (J^^A 3 U^) jl ^JaJjoiJ 4_llaj| J^ 4_icUu^.VI 4 ujAa^-U ^.t.»Lt.»VI L_fl^Jl jl Cilia (djUi jlx-<Jl ^a^. 4_L^.j^) C5^J*^^ 4-^J>Jl 

j^xj CjX^ aIoj ^ jJaill jc. 6 jUc- ^ j (CjX^aII <Lj ^ (j-a j*]|) Dumpster diving ^ j^^^ oaailt djluij (j^xj 
^joj! J!i<i 4juil cjLg jIx-aj til^cij dumpster diving u^j c5^>^^^ <jujLmaJI cjU* jlx^JI ^jiaxjj 4 o iaJL Ua. jl jj^iillj 
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: J] (g^Uai^VI) Reconnaissance 



Cj^U^ JS* Jc Jj^^il aj^Ua jjc. Aijjkj jSlj lJ^JI J^UjII :Passive Reconnaissance 

j dumpster diving j a^I^VI ^Luoig-II j jt^VI djljj^j j diaall 
cjIj^Vi ^l^kiujl Jla ;AiLo JJ c$l ^ I^^-j ^^Jl jaSUJI J&liall Jc lsj^ :Active reconnaissance 



Scanning • 



j^Jl J ^^13 (*6^>»^l) J ^Jaij Jc^ J jj^a^il £cjoiJ! <jj^aljall ^.vVunj < (Reconnaissance) ^^-Sai^VI kA^c J^Ll ^ 1^*-^ 

.Udj 1 ^ cs^l ^1 j^l flkjll ^UjV war dialersj network/host scanner SjaUJI cjI j^Vl ^^Ijjj U t-^b ^Lg-^l 

Gaining Access • 



_axjjal! cJ*^^ (jjii^xJI <1^>a Jl j^jjj 41^.^31 j .potential damage ^^1 1 gjV* (j^llajj ^-^^ ^1 ^>f^ 

(_£ jlum Jc jl JjlxjaLill ^aUaj (_£ jl uia Jc^ j\ ciijjjjVI jl (LAN) - ^jui ^ jiu 

■ password cracking' session hijacking' denial of service 'buffer overflows Jc- <>j ^ liukti l 

Maintaining Access • 

'Backdoors ^I^jLuAj <s^y <-! j^^j <J^-^> t^-^ll J] b^-* J j^-^l aj£1a Ja£^ ^jjii^J! <Jj^^ J^ 41^.^31 Jl j^jj 
(jj^ a\\ ^Uaill Jc (jiil qjjinMl j djUUJI J^IxjII j tdjliLJI £3jj Jj^^lj (JjILaI] ^ajujj Uui 'Trojans j> 'Rootkits 

Clearing Tracks • 

.Log t J jJJJullj J J^-^l 



(CJu^ TYPE OF ATTACKS 1.6 



Types of Attacks 



II 



Operating System Attacks 



IV1 isconfigu ration Attacks. 




Application Level Attacks 



hrrnk Wrap Code Attacks 



^^ki^jj (OS vulnerabilities) J^-^ ^ ^ ^> ^^J! di^ [Operating System attacks-1 

t> ^ u^j .C5^^ Vj axj V CjI j^j LJilh j ^ jjlt/cjl qji Viil l ^ jj :Application-level attacks-2 

ji AjU^i ^ ajjjj^II cj! jl^JI V (Admin) i-^Vl c5 iMisconfiguration attacks-3 

J^ JaxJI ^ 3 Vi . ni^ l c^jjjI^VI CjUL (> ^jaxJU jb Jji^ull ^LJijl cjllnki : Shrink wrap code attacks-4 

(j-a ^ jill Jl <^jJ (jl (j£-<i-<Jl (j-d Jll j djl^sull (j-d ^jAslSI Jc Uiajl ^ jlaJj djUj^joaVI <JL« (j£3 j 6 (Admin) ^ ^jjA^ 
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OPERATING SYSTEM ATTACKS-1 

(Jaxj (JjlxjaLill 4_xJaji _<jj^ljal3 4_jJajC ^UlLj 6L_axjJall Jataj j-a ^-^JC- ^Uaill (J*^ I jj^Vlui^l <Jj3 4 <JajVl £>JA Ifc j3 jJ 

J jj^a jll Aijjia j ports Aa^Lujl ^CJJ £>i& j .(GUI)^^ J^J^ ^aujuiall tlll^aJ j Jla C_lLi,lkll j-a JjAslII lS^*-*^ 

(OS vulnerabilities) J^-^Jl ^Uaj CjI ^>ij ^ ^i^n JIa ^ViN Jj^Ij i> c_Aki5 oi^i jjjVI 

a£jjoJI djl^jisu ^-g-^ ^stj ^3 fix-file ^^-^Vl diiLij patches ^-^l^ cIujjj _cj|^ij3l jja*JI < al ujj£i ^ia^I^xJI ^^ic 
Buffer overflow vulnerabilities Bugs in the operating system 

Unpatched operating system Exploiting specific network protocol implementation 

Attacking built-in authentication systems Breaking file system security 
Cracking passwords and encryption mechanisms 



APPLICATION-LEVEL ATTACKS-2 



I 



c5^jj l?^^ j (tight schedules to deliver) ^^^Jl dajll ^ cj Uai^l l Aii-Jall jll Jjl^JI ^1 jJI ^ jjiaJ . i 

.4j1c Ajalall djljblkVI (JjAj JaslSI (JJ^ <^ cliliulajlt Jj^-la 

.(dearth of time) t> j'^V' cU£ jUlk! pbV c^jll ^ ^ U cilUA ^ .3 

. (add-on component j-^a Ur - U jlfSc-U axj Uua l^uL^ ^jjj <Aia.V ^ jj^j jl^VI ^ o^^^ .4 

c^^jj >»l cjlSjjkUl ^4 (poor or nonexistent error checking) Uak jj^j J\ uia^a 

(dja>JI jj ja^ll (jl j^U ^j^i) Buffer overflow attacks . 1 

Active content .2 

Cross-site scripting .3 

Denial-of service and SYN attacks .4 

S QL inj ection attacks . 5 

Malicious bots .6 

Phishing . 1 

Session hijacking .2 

Man-in-the middle attacks .3 

Parameter/from tampering .4 

Directory traversal attacks .5 
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Session Hijacking-1 



1: 


<configuration> 


1: 


<configuration> 


2: 


<systerruvefc> 


2: 


<sy5tem.web> 




3: 


<aut he nti cation mode^'Torms^ 


3: 


authentication mode="Forms"> 




<forms CQQkiele5S="UseUri"> 




4: 


<fornt5 coakieless="UseCookies t# > 




5: 


</system,w6b> 


5: 


</ sy stem, web > 


6: 


</configuratioti> 




6: 


</contiguration> 




TABLE 1,1: Session Hijacking Vulnerable Code 


TABLE L2; Session Hijacking Secure Code 



denial of service-2 



t 2: 



Statement stmnt = conn.createStatement (); 
ResultSet rsltset = stmnt. executeQuery (); 
stmnt. close (); 

TABLE 1.3: Denial-of-Service Vulnerable Code 



1: 




Statement stmnt ; 


2: 




try ( stmnt = conn.createstatement U; 


3; 




stmnt . executeQuery C) t \ 


V 4; 




finally { 


5: 




If (stmnt- = null) { 


G: 




tary { sbont, close (} ; 


7: 




} catch ( SQLException sqlexp) C } 






} catch ( SQLExcep tion sejlexp) { > 


TABLE 1,4: Denial-of-Service Secure Code 



[ISCONFIGURATION ATTACKS-3 

jl tCjl^jJJIj cCjULiJI ^cl jSj t^jjflalU CjL^aidj 6l_jjj3I Cjljfljjjuj/cjl &iLa Jiji (misconfiguration) ^-^-Vl l '** - *a]l Jalij 
^Itdl ^ lij .^Ikill t*fctLal aJUiJ J illegal access £ j^JI /J c^j£ ^ ^Jill (framework)^ J-^V 1 

SHRINK WRAP CODE ATTACKS -4 

dijujj] " 4_S£jouJI J g» ^ (J>»Ixj3I Admin J^ J^J ^—^j^-^VI ^jAxJI ^ J^J Cjlknlaiill jl <J.it-uu3I ^Uaj c_ ujjj ^jc 
.shrink-wrap code J aj^IjjsVI Jl ol<uJI <> Jil cjLjI^VI ^ j ^j^vi J " 
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Frdrafe Iuic4w n C^anL^IirafJ^v V*I sLira As Serine) As Stdi« 








01 E £3 


Dl 


m. 1Q uot e C o i.mt As L o in if 








01 5 Z.4 


PL 


ill lC OUTIt A.S 1,1 O Ii"lf 










Ij i_ 










0 JL 5 2S 


Dim fPrnvChar A.* Sfcrlncr 






















01 ^ 2"-! 




Starts f+d. t j'-i Seat it is J coaffitaMi 








01 S 23 


s Line 


= Trim(sLirLe) 












Left (sLme, 3? = "Hen." men. 










r 


Cleantipllne = "" 












HjcLti. Fuuuctl Ion 










Eii-l If 








P _ '__ 


















:St r??--- f-..-=; t*H f-.h ' 7 f~. 7 .-=i ^ m-m-H=^T f~. 








bic-se 




Laft (cLiti4, 1} = TlictTL 








f| T ~ -;"7 


r 


C le ai jTJiii Line = "" 








Bl 5 3S 




3 nit Pimction 










End If 








01 ^ 4^ 














Ol 5 4-1 




CDntdins 1 aiay end ira >a iniili'dillMii|>i'"iflr. so test if ib 




t 0£" in 


tie 


U "[" ^~ 




i?£?cfp of d s triragr 








u s 


-I c 


InStr (sllne, J > O Then 












e Jrt" evLJiar = " " 








-It" - 2^ 




1 CUuteC .m.uit = U 








■ 














Si 5 2 




r For lcuiint - L To Len(;LLne) 














sChar - Sid. ( sLlus H L o wit , 1) 








jplSdS 














blE-EO 






1 If foiirccL 1 " 1 ' biser? .an evejj raz.JTTtf-*sj- off 


" cJiardc iers 


ira f-rorat 


DIE SI 






1 aedns it is tie sb.a.rt of .a comfTfrerat .■ .a-ncl 




&3f25 it 


is 


01E52 






1 jJca jrt of a st.ciE2<j- 








015S3 






— If sChar = ind. sPcevChar = " " Then 








Gl 5 54 






pi f 1 Qaot eC.n.uLt- Hod 2=0 Then 








OlESE 






sLine = T rin ( 1 eft ( sL due , lcount — 1| 








OlESS 






Exit For 








til£S7 






L Elirl IE 








blESS 






—Else 1 T. sCri&i: = Then 








5015 53 






1 Ouirnte CtnTJirtt — lQuoteCount + 1 








pi 5 CO 






El If 






















501 ES£ 














pi 5 £2 










P1EG4 














til E GS 


CLeaiUpLine = sLine 








01-.GS End FtaOhiEE- ±oij 









(^UjkAlt o-t J fS»3«) INFORMATION SECURITY CONTROL 1.7 



( alia jf^l ^Ic- ^cLoaj Aja^kVI <jj^ajl3lj tU^ jl 4-kiij-<JI jJaL^xJI ^ j-aj ^Ua tillil jl j^il ^ t^j^ ^IUa 

V ^ill ^Vl ci^^l j < W>^1 j ^^V 1 J^ 31 <i^»ji3l jLc ; (ethical hacking)M^^' jiJl 

"^^axJI ^li^ll" jlJ iiiiil cjUJiiJ! ^HiJ ctilli Jj^jI :(Defense-in-Depth Strategy) (j-^il ^li^JI M-aajjIjI-uI 

iiuaJI iL-fll jill ^1 cjU^JI 4^jU^j ^joij <jV c5 jjj^ ^^Vl : (Counter the Attacks) ^I^aJI f j-H^I 

^Uij ^UjaV l^al^iojl jSaj ^1 j (anticipating methods) ^ j£\ aLj^ 

(reconnaissance and scanning) ^Jlj ^!lSai^V! 
(Gaining Access and Maintaining Access) Jj^»jJi ^kaU^llj Jj^jll J^l 

?f UalJI ^ J^J i^jj • 

(reconnaissance and covering tracks) j^VI j ^^Ikl^VI J^l j-a 
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>C5 * jail <>VI CjUIU^ j l_jU jVI .2 

.<jj^alj£3l djLa^Jfc (jAsH C5 lc j^la (jj^J ^»Uaj s-UJ .3 
.Cljl ajalall j djLauaj^l] (^^-^Vl j3l jLS^V .4 

(SCOPE AND LIMITATIONS OF THE ETHICAL HACKERS) ca£*i*l ^IjSJI jjj^j J 



SCOPE 

.JjaJl a£aJlj t<"ll mjLuJl JjJaSl j njljja/ifl 4 a jl £ - j tdlUL aa 11 AJiLkVI Si^jSlt • 

CjLg jlx-<Jl Lia. jl jj^J ( fl-l]l^J .l^Jlj tA-i^laJl dlls-l^^-VI ^^ic £ JJ^all JaJjaiJj a all Ij l^j] <^I^JjojI ^aJJ • 

.Cj! ciia cij^ t>(ICT) CjVL^jVIj 

LIMITATIONS 

j>» 4 j i J^-^l c^IUa (jj^J (jJ (ju 
4 <<JaL&l] cil jjla ^>«VI (jSl j tA-iiaVI ^cLja jV JjJaSl ^il dltxJaiall I j^cLaaJ jl «tg £ aJ jjill jll jJj3!>tkVI <i^alja3l lil • 



:ETHICAL HACKER SKILLS ^fc^l aj+* 



li& ^ij ^^£3 j .cIjLq jIslxJI U^. j] c > ^1 Jataj ^-^V pen tester lA^jqVi <uj jjIS 4jUc% 4ja!>tkVI <jj^aj£3l 

l^Vl^ CjIjI^xJI j'^^ ^^^LkVI j^-g-!l ^Lqjj jl t . 
A-jj^llI CjVI^g j^j 4^ j^l cJ^^ J^f^ ■ 1 

■sj"^\^j u^^j^j jj^j ^^^^'"^^ ^Ujuj^^l! aaaxIaII a^s^us _3 

.CjIi^jJI j 4i^alt Cjli ftj^Vl j CjIIl^JI kJiy aJlL* Aijiu* Aj^3 .4 

■ ( ^uJal l CIJJ^ Ajlj^ ^ (JJ^ C5*^ -7 
.li$J j^Vl ^U^l lij ^J^a ^3 ^IAxIojI JjfL ^Tjn .9 

(> ^tii») DEFENSE-IN-DEPTH 

iiLujj j ,a£jJo3I ^ djUi jIslxJI J '^Aje^l (Defense-iii-Depth) (3-«JI £y* ^li^li D^LiaxJI j^l^ill j>» ^ja*JI iLkjl ^jj 
jjjoj^Jlj o^jl^VI c^xjj c^JI L^k (Defense-in-Depth) c3^^ c> u!^ ^Itull Jjj^jII j^WSI ^IkUj 

jl jlkVI I^A jl j£j ^ixJ <J^-<i jl S^lj^ djbLja>» djS jll 

.djU jlx-<JI ^Ikj ^UjI ^ ajs! j djlLia s^c ^jja jj ^l j-oVI ^Li^jjljlajl (Defense-in-Depth) (3^*3! ^^l • 
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(<ij3el\ SjUVI INCIDENT MANAGEMENT PROCESS 



.cj^L^JI (jjoii jtj^i ^—^j S-U^' 

(^U^JI s^ja. improves service quality 

(ajSULojVI JSLUI J^) Pro-active problem resolution 
(cj Uhi^ t/AjjUjlt JUcVl ^ dialjaJI jjjb ^ JSL) Reduces impact of incidents on business/organization 

(Sjil jiJI <^JI CjUiki* c ^iiL) Meets service availability requirements 
(f«%^]j a£kj*M SpliS <> jj) Increases staff efficiency and productivity 
(*5L*]| / ^vim^ l Ubj o^j) Improves user/customer satisfaction 
(J .^ ' ^l l dj^lj^JI J^UjII ^ ^Lujj) Assists in handling future incidents 
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cyA ^UL^ INFORMATION SECURITY POLICIES 

L5 lc a£ jj^JI Uiiiii AjiftVl -M jjjJI t_L^aj jll JjIj jll ^ <c jl <Lj j [(Security Policy) l)-*^ <LuiUui 

<J-gjuiJj t j aialal] <J>al£3l ^-aVI cJ%^ ^ jft 6 ^ .HaJ jl^Jl jl <J^^ *l L>* J^ l£ J^^o 

4^jjoJI Jji^jjoixJI ^ tCjLujLjjaJI d^a ^ ,(il3i Uij tdAiUJ! ^<^j (jjiJI <jjjU3I <jc !>Lja3 ^ ^ A\ cAjLJI 

.Ij^. j jaixJI CjI^jIslSI 6<Lolai a\\ AjjI > >i'qll ^ ^ 

CjU jIslJI ^jl^ j Jaxj cjLujUjaJI . (Security infrastructure)^^! <s±*l\\ qAjJ ^ CjLuiUui 

J| <jajLud^. CjL* jist-o (jc l_Lo£3! JiLd 4_jjjudJI pi U^Sfl <JAc c flg > >i ^JaL^xi l!^^^ t-^tt.\<j o^tii l-«-^ 

AjJa AjLa^JI CjLujLljudll j3 jJ ttilli J] AiLjaVU ,til3i J] Lg j tdljjlj^l! J^*]t ^Ia^j uaVl tAi J^>»-^ J;iC. jl l^J ^j^<^ jjc. j^l > ^> ^ 

: (SECURITY POLICIES)^Vt ^UUuJl uiUi 

4^!!^ /'lUjJa 

<Lola A\ djl^tlxuJlj <jujLud^Jlj AjjjoJI CjUUJI (jl^j ^aUaill ^jl j>J ^jjjaui J^*J^ ^I^JjojVI (jC 4^<^.U3l a A\ (JA ^aJl 

(^! ^UuJI 0»i-iS) CLASSIFICATION OF SECURITY POLICY 

4_ij£i3l (J-dlxjl! ^jc ^1 a u^yi l^ailaj ^j3I ^cl jail ^j-d <c a CjL<» ^pil <jujLluj j! tCjLd jlx-<J! ^j^l a i^f^ j>'^^ o\ 

I^Vl^ 5iiLk-a CjVU^ ^Lai^k l^jjluoj ^jj AjlftVl CjI^IluJ! jli t<JUi 

( ^^niflll MuIaVI cjluiUuiJI) User Policy • 

^-Ld <J^l^Jl L_flJ^xj3l JjLoj j jj3 jJ L— (j-a ^^istxJl ^Uaill Jc ^AAtJl (Jjlila J-^^ (3^*^ # 

.password management policy ^ .^jl*^' 



IT Policy 



/Sjq'uo 4^ unit ^ V> lal Q ^ 1] CjLq jlx^ll Lia. ajuaal aAyaa ^ J)^Jl IjiA • 

modification policy patch updates' server configuration<backup policies ^ • 



General policies • 

crisis management' business continuity plans 'high-level program policy • 

Partner policy • 
Issue-specific policies • 
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personnel security policy 'Physical security policy ^ • 
STRUCTURE AND CONTENTS OF SECURITY POLICIES *UUuJ! <|jl^j Jij* 

(STRUCTURE OF SECURITY POLICY) Wfl ciuJ^A J%a 

ft^liluiVI La (j^akjaJ (j£-*J <*Jj^a ^at jJ V 4il ,j£Ij13 ^Ja - ^ (J^-^ J 13 ^ o^lcl ^^uhj <ajli 4-}Ij*j 4_il<»VI CAjuAjjoJI ^aJajj VJ *;* , J .A-ilaVI 

.A-ilaVI dLuA-ijqJi Ljl > >>M JjjL^aij c L^a j • 
.A-ildVl ^LulljjuJl (jjJflaJ • 

,4_ixuJaIi3l jjjIx-<JI Aial jILg jjc. <jajUjaJl Clijl£ lij iljAaJ (jl l^jLuj (j-d aAh a jC • 

(CONTENTS OF SECURITY POLICY) i^Sfl cjUUuJI ^jl^ 
2-^j3 ^Lkjll CjUlkLi ^iajj liA : high-level security requirements^^ ^L^U« <> Jte ^jl^* j^aj] ^ UlkUl t • 

<ilik^S I AjiftVI djLajUjuJI Jxu^j CjUlkLJI : Discipline security requirements^-^) LbJajV cjUIIsU) • 

J ^Saull LJ^J CjUlkLJI ^ : safeguard security requirements^ iat-LaUi cjUkUJI • 

aa! 6 c3^ j-^j y laJili < jjLuall t4_jjjoJI t jal jiill 6 authenticityM^ 1 -^^^ 'audit qj* ^ j ^ fl-^jVl t<J jj^ jll 
4 object reused)^ ^l^i^l s^lcj 4 non-repudiation j&H I ^ 4CjU^UJI ^j <cjI$*Jj1I 4integrity 

.djLoj jj^ll ajLa^JI j 4 recovery ^^j^VI 
Jc UjajLujI ^ jiaJ cjUliaiJI d^a : procedural security requirement(>»VI cjLuiUui f Ij^V cjUHaUl • 
(continuity-of-operations) ^ULwJI (Jj^ jj I^Lj 4<!^LouJI ^Ija j t £JuA±^ 

^^kiaixJI kiJaaall ^Ij jj jUuc^VI j ^^j^alU cjI^I^ I^a j :assurance security l>aV1 l)^ 4 ^ 3 • 

;CjU1a3l!I Ajjlj-dlujlj CjUIj^-VIj djljUuiajlj ;4_ii<iVl djL^aj^kjll ^^ic j^jj iPolicy Description ^tuiLiui]) ^a^J < L^jil • 
j£ jj I^jV .(>Vl ^Ujuj ^l^j CjUIjjjoiJIj jlj^Vl I^LujI jxj :security concept of operation CjU1 * x1 3 ^SfS ^jfiAJI • 

(j^aLaJl ^Uaill 4^ jLuJl CjLi^jJI ^lAaJ ml j t^jLjall Cj5 jll Sjbjj 6<jLl^3l j ^AaJLauJl Aclj3j 6 jjjjujlll j tdlVU^V! J 4^ ^11 ^^ic 

j^j^ allocation of security enforcement to architecture elements j^aUp ^ Alukll ^>Vt u a 1 "^** 1 • 

(TYPES OF SECURITY POLICY) <>At ^U-U« ^t^t 

djI^J^jll j-o l^J 4_j^LaJl CjLq jlx-<Jl <J jj-sal AjIa^J A£jjoJI laJaaJ j <Lj]a ^jC CjLq jlx-d Jc ^jJ^J >JJJjau> ^jC 6jUc j& (j-dVl <juj1_1juj 
4_LalJJj jj| AjUjl A^-JJ .<-— iUi jIslxJI 4^d!)ljaJj 4 jSl jJj 4<JJjoJ Jc JaliaJl Jc AcLolJ L-jLojUjaJl ,AijJSLXi JJsJlj AijJSLxJl 

; Jj LS, ^ AjlftVl CjIujIloJI 

^ ^aJLauiI] jl*j .dij jjjVI Jj Jj^jJl J^ ^j^ ^j^j ^^xj ^LluJI jjy»jj Promiscuous Policy (1 

I^jLg (jj^J (jl (j' U^ 1 ^ J -0 U -0 *^y* jl JJ jJAa£ Jj (J jj^a jllj t^JjiaJ ^1 (Jj-a^Jj t^i jxi ^1 Jj (J jj^a jll 

Cj\£jJi Jj Jjj^ijII Jj jrU^j* jilt c_jjIU! J JaJ! jl ujj^ 1 ^ O 3 ^^ ^ ^jW^^ JL^Vl J 

jjjjjVl a£jjui Jc 6^ j^. j-<i 6^1 jj^a j 4CjLuj jjjill j 4 (mal ware)**-%f^ ^^>^^ ^-^-^i^ Cy* ajaxJI t^j^jhvi 
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(4j o^j J^V^ (internet traffic) jjj^I JjjS ;4iALal4 Permissive Policy (2 

JjjjuixJ (Jj^LolaH tiaaS Aij^x-<JI CjIa^JI ^a-^ Jc i^xj .4ij^>*-xJl SjJiaaJI djLo^Jlj CjLd^J! (j* ^jAslSI 

Ja^a Ijji^j (administrator) ^U^l yrb>^ .^l^^Jl ^ 'Ah 4^1^ Prudent Policy (3 

<j^aLkjj jj jjj^ll ^hviml Jc *LdjLj^a ^ jjS tilU^ .^^^ cJ^ ^LujJI i^jj j-« Paranoid Policy (4 
Lite 



(STEPS TO CREATE AND IMPLEMENT SECURITY POLICIES) *UUuJI j,ukij * L5uV 



Perform risk assessment 
to identify risks to the 
organization's assets 



Include senior management 
and all other staff in policy 
development 




Make final version available to all 
of the staff in the organization 



Install the tools you 




Learn from standard 
guidelines and other 
organizations 



Set clear penalties Mid 
enforce them and also 
review and update of 
the security policy 




Train your employees 
and educate them 
about the policy 



Ensure every member of 
your staff read, sign, and 
understand the policy 



,4_il<iVl AjujUjuJI Cjj^jj j^q Ljajlj lA liijjj 4_ajJalj CjUj^c (JJlIsu .4 

_4^J^1<J| J (j^ia £J A y \ AaIIa A^jailll l5*^ .5 

.AjujLijuj J^nJaj] l^llaj ^^jII CjI j^VI ^n/n ,7 



qaJu! ^JIslSI ^L^Jl J dal ^h^ll ^j-d Ifr^l^Vlml j tl^J jj3 ^aJ j tlAjLaul ^aJ 4_ll<iVl CIAjuA-AjuoI) Jc <£l<iVl (J^su Uu3 j 

Acceptable-Use Policy • 
User- Account policy • 

.(j^Q laJLudAll cjULoi^j Aj^aLaJI cjUIjjjoiaIIj t^ji^Jlj iA laLuJI ^Aaj .(account) m^-* ^ ^ ^^jj i— LiLac. 
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Remote- Access Policy • 
Information-Protection Policy • 



Firewall-Management Policy • 
Special-access Policy • 

.^Uaill Jjl j-g Jl (J^il a (J JJ^a J ^-i-a -la J^y* J ^at^aJ 4_xjjLluJI J^&J 

Network-Connection Policy • 
Email Security Policy • 
Password Policy • 

(RESEARCH VULNERABILITY SECURITY) i^Sfl cAJtl\ ij^ 
^ l^J^ ^> jSaj ^1 ^ix^ill < qT >hj cjI j| jlkVI ls jfia^ l ^^iun cjUi5 ^ Research Vulnerability 

.((remotely)^ t> <(local)y?^) (i^ 3 ^ • 

VULNERABILITY RESEARCH WEBSITE <-iuiM ^ ^Sfl J^jJt cjIjjI 

CodeRed Center .1 

http : //www . eccouncil . org : j^^Jl 

tdjLoijjjiil! djUi jlat^Jl (j^^j C5^J^ J^J^ t^lilaau ^jl I g j£ ^^^J (admin) ^Llajlt ^jjjouJ J^Luj (^5-^1 jAj^q 

TechNet .2 

http://blogs.technet.com 

Lync Server c> ^ .(Microsoft Lync server teams) ^ ^ c> ^ 
^ ^^^j JjSaJt ^^ij ^UjVI ^Ij cj! > ^i > ^M 1 jjjU q±8l&\ j jqU j c_jUill documentation 
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Security Magazine .3 

http://www.securitymagazine.com 

4_jaUaJ^<Jl J ^ all 

SecurityFocus .4 

http : //www . securityf ocus .com 

^)jjju . jj jjU-a^ll 4_ii<iVl CjI^suI! ^jc (j^cVlj 4_iLi^ij <ju»aLL<J <J-gI£1! ^U^aVlj ^ ^ 'SJ^LW *LajUi Jc ^jl^j BugTraq 
L_aa_^all JalSj jo cjU jk* <j*Vl JU^ yi j j^^vi^ ja jj The SecurityFocus Vulnerability Database 

Help Net Security .5 

http : //www . net- security . org 

l4a±±L1\ CAjl* t^j^Ull CjI jj^j t( flxjJaH -lalijj tdlUjjjllj 4_iii3l ^! ^<J| j^. Jc Uiajl j^JJ 4-^-9 t^llaJl s-L^Jl <^9 jU^>lI 

.IVIaC OS X l!^*-^^ ^-^J 'U'^l^ Oj^L$ ^-^^ daLl^ ^j;^ (Jaa^J 4 «sl ubo L_flJjJaJjaaJj 

HackerStorm .6 

http://www.hackerstorm.com.uk 

SC Magazine .7 

http://www.scmagazine.com 
A\ £>i& ^ cj! jl^j^al -^.jjj .4_ixJlsJI <jjL^j3I ^^^UJI j& j Haymarket Media Inc. lM* ^ j& 

^ j ^jj^V u ^ ' ^* ^jj^V jl^-flj North America -U.S. and Canada 
^j^V u^^^ jl^-fll International - U.K and mainland Europe 
ia^JI Ai]^ ^ <Jj^-20 c> jSSV jl jSlI ^ jl^-aj Asia Pacific online 

.1989 

Computerworld .8 

http ://w w w . computerworld. com 
xx» CjU jl^xJI j Ua. jl j^ll J^^l C5 jouj jll computer world ^^j > ^ l <^ 40 

Hacker Journals .9 

http : //www . hackerj ournals . com : j^-a^ll 

Ulc Ji^VI c>VI ujjU^ t*U ukjl ^IjJI ^> ciVVI dj|^)jujc. jLlkVI ^lAaJj diaj ^^-Sc (JasU C5"^ ♦ lS^^ U^ 0 ^jW^ ^ j 

WindowsSecurity Blogs .10 

http://blogs.windowsecurity.com 
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?(WHAT IS PENETRATION TESTING) JljSiVI JfiU > U 

-J lij u^i a£jJo3I <jU^. Jc- ^cLaaj .4 m ^ a£jJo3 jl ^Uail j-aVI CjUjloui ^jjifil j ! (penetration test) <jl j^VI jW-^ 

, lS^-^ UJ^ j^-* J J ix-^all JalSj L_flLuu£l 

t^L<L> gajli ( *<1t > >i ujj] 4_xJal<Jl 1 * ^ jaOjujj jll 4_i1gVI dlls.lja.VI <J^ jW^*^ l^-J ^j^J c£^l ^akjuall jli ;Jjljla.VI J^-A^ <J^-^ 

; jVt^ jblkVl j-a jlc jj t^liA .t flxjJali -ia^jj 64_iii3l L_J J;i»-Ilj 

(black box) 4>At Jj^aJI • 
(white box) Jj^S^ll • 

jUlkVI J-<u^j Jll j jjjUj ^l^oj J (pen tester) dljLlkVI jo J jim^lt *M jli cjljLlkVI (j* ^j^j 

.Ia^Iaj] ^aJ j3l L_astjJa3l JaLLa jjJJ jli j 

^ I j <\\\t in La SjIc- j J AjIS j]| Cjjf Ij^jj 4 L^La 7 ttLuall LHj j cJ^IjjaVI iatuu JuLjj jP Jj<nl flj jjjliUl diA J-aJuj j 

,4u1a| ljL-ujV a 4 ^ < n i j£-ui 

?PEN TESTER U 

<juuojj^<Jl J dlLa jLlaII <J jj^I 4-a.l jJ jli Cjl^J^ill >lJAaJ • 
Jalaj cJ^-J V w * L-Lud^ (ROSI) O**^ jLgjIoiVI j-a ^jlo JjJaSl jj3 jjj <jauujj>J3 dLa jlx>Jl Ua. jj^J t fljl^J ^ajiaJ • 

(ROSI = Return On Security Investment) ■< *^ > ^ l 

C^Uu^alU j tdjUl^^yi J ^(policy)^-^^^^ 15 J ^A^*^^ ^ jJal^I3 J-dLai ^JjVl <J^lk (j-a | jUijJall ^ jh'^ll jj3 jJ • 

. (BS7799,HIPAA etc.)^ 1 -^' f^ssl JilbJIj ^1 • 



PENETRATION TESTING METHODOLOGY Jlj^Vt jU^I 
jc aI] <j£-<uJI djUi jlx-<JI j^^^ ^j^^ ^jj jl ^ ; .c_jL<» jIslaII l$\ jc VI tiLlc t . w ^pen tester ^-j^aj 

(Jj-o tdjLa^Jl j-d <JJa t^lUA m A m\ Mi^ll CjLd jIslaII ^aJ j-d j ^aUaill <J jj^ jll jl^J ^5 l^jj jl tdlLa jlst-<Jl ^aUaj (jj^ Jc 

£i<^J (j-aai ^3^5 jl jUuiJ g-MUj .^Uaill Jl J^k^l Jj ^H^i V jllj t(denial-of-services) ^j^^JI <> j^» j^JI CjU^ 

. J>»l^3l (jUaill j>uiaj liAj .(jlji^V! J^^-l ^J^^"^ ^^l '~*\^' L 6^£jjuJI jl ^Uaill JjljikV Aj^xuJl Jfuoll 
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FIGURE 15: Penetration Testing Methodology Part -1 





FIGURE 1.6: Penetration Testing Methodology Part -2 
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